[horde] user authentication against non-anonymous LDAP directory
amith at xalan.com
Tue Oct 26 07:51:31 PDT 2004
Authenticating against LDAP using non-anonymous binding is only in CVS HEAD.
I don't know when the Horde maintainers will backport it. I don't use the
stable versions so unfortunately I can't help you.
Quoting Alexander Papaspyrou <axp at gmx.net>:
> I have problems with setting up horde-2.2.5 to authenticate users
> against a non-anonymous LDAP directory. horde seems to give a sh*t about
> the binddn and password parameters at all. Whether they are set or not,
> all binds are performed anonymously -- which results in "permission
> denied" burps by slapd.
> The relevant part of horde.php says:
> --8<-- snip (horde.php) --8<--
> // What backend should we use for authenticating users to Horde? Valid
> // options are currently 'imap', 'ldap', 'mcal', 'sql', 'ftp', 'smb',
> // 'krb5' and 'radius'.
> $conf['auth']['driver'] = 'ldap';
> // An array holding any parameters that the Auth object will need to
> // function correctly.
> $conf['auth']['params'] = array(
> 'hostspec' => 'ldapi://%2fvar%2frun%2fopenldap%2fslapd.sock',
> 'port' => '389',
> 'basedn' => '<mybasedn>',
> 'uid' => 'uid',
> 'binddn' => '<myrootdn>',
> 'password' => '<missing>'
> -->8-- snap (horde.php) -->8--
> The connection itself although works perfectly; regarding to the slapd
> logs it's clearly a permission problem.
> Am I overlooking something, or are non-anonymous directories still
> unsupported in horde-2.2.5? If so, I would very much appreciate CVS
> trunk patches that enable this feature.
> Alexander Papaspyrou
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
More information about the horde